<?php
// TODO do we need this class since we've dropped the authorization stuff?
require_once 'AuthorizationRequest.php';
require_once 'AuthorizationResponse.php';

/*
 * return the permissions the user has to the given resource.
 * return values are configurable on the back end and may 
 * include values like 'read', 'write', and 'full'.
 * An empty returned value indicates no permissions. 
 */

/*
 * This is a stub for authorization.  This returns full privileges.
 * A future version would look up authorized operations from the database
 */
function authorize($authorizeMessage){
	$userId = $authorizeMessage->userId;
	$resourceId = $authorizeMessage->resourceId;
	$authorizeResponseMessageArray = array("Read", "Write", "Full");
	$response = new AuthorizationResponse();
	$response->permission = $authorizeResponseMessageArray;
	return $response;
}

?>